Malware Kill Chain build framework
Report Bug
·
Request Feature
MyWarez is a malware kill chain build framework that can be used to automate the build process of endpoint attack scenerios. With this framework, you can construct and modify scenerios such as the one below in an automated fashion. No more spending hours manaully compiling code to make a modifcation to 10 level deep compiled resource!
- Hosts an Edge exploit on an HTTP Server (HTMLMTH)
- Applies HTML, HTTP, TCP, IP evasions to the exploit response traffic.
- Exploits the browser to execute a command line payload such as PowerShell.
- Reflectively loads a next stage DLL containing an LPE
- Exploits an LPE to take control over \windows\license.rtf
- Overwrites \windows\license.rtf with a next stage DLL payload
- Uses the Diaghub technique to load the DLL, license.rtf, to escalate privilege
- Establishes persistence using the AppCertDLLs technique
- Invokes Anti-Debugger techniques and only executes the next stage when the next stage DLL is loaded by winlogon.exe
- Launches a Reverse HTTPS meterpreter shell over TCP:636
To get a local copy up and running follow these simple steps.
- C#.NET programming experience
- Visual Studio
- .NET Core 3.1
- Visual C++ build tools
- Python3
- PyInstaller
- GO
- TDM-GCC
- Metasploit-Framework
- Windows Sub Linux
- Install dependencies and ensure the following are in the System Path
go python pyinstaller msfvenom bash
- Clone the repo recursively
git clone https://github.com/ZwCreatePhoton/MyWarez.git --recursive
- Open MyWarez.sln in Visual Studio
- Clean Solution, Build Solution, Run the Examples project.
For code examples on the framework's usage, please refer to the Examples project.
Read through the commented examples in the following order:
See the open issues for a list of proposed features (and known issues).
Contributions are what make the open source community such an amazing place to be learn, inspire, and create. Any contributions you make are greatly appreciated.
- Fork the Project
- Create your Feature Branch (
git checkout -b feature/AmazingFeature
) - Commit your Changes (
git commit -m 'Add some AmazingFeature'
) - Push to the Branch (
git push origin feature/AmazingFeature
) - Open a Pull Request
Distributed under the MIT License. See LICENSE
for more information.
ZwCreatePhoton - @ZwCreatePhoton
Project Link: https://github.com/ZwCreatePhoton/mywarez